O slideshow foi denunciado.
Utilizamos seu perfil e dados de atividades no LinkedIn para personalizar e exibir anúncios mais relevantes. Altere suas preferências de anúncios quando desejar.
Understand the
customer’s
access rights
under GDPR and
how you can
comply
Dan Wingrove, EMEA Presales Lead, Nuxeo
Peter Bl...
1
2
4
3
GDPR, The Rights of the individual
Subject Access Request
Complaints to the ICO
How Can Content Services Help You
...
Objection
Art. 21
Data Portability
Art. 20
Automated Decision Making
Art. 22
Rectification
Art. 16
Erasure
Art. 17
Restric...
Subject Access
Request
4
Access
Art. 15
Data controllers must on request provide a copy of the data undergoing processing ...
2016-17
18,354
Complaints to the ICO
Source: ICO Annual Report 2017
2015-16
16,388
12%
60%
Subject Access
Request 42%
Inac...
How Can Content
Services Help You
Comply?
Nuxeo
Nuxeo, developer of the leading, cloud-native
content services platform, is reinventing enterprise
content and digit...
8
Subject Access
Request  As a Customer, Employee,
Citizen, Student…
 The rules are changing:
 No longer chargeable
 R...
Subject Access Request Processing
9
Discovery
Review RespondExceptions
Submit Capture
Bill Matt
Rachel
Request Submitted
10
 Customer submits online/paper
based request or letter
 Selects preferred method of
delivery
Create Subject Access
Request entry
11
 Automatically or manually
capture details
 Validate and enhance
 Initiate workf...
Processor performs
Customer Discovery
12
 System Checklist
 Assign for processing
 Automated and manual
discovery
 Ext...
Information to identify
13
 Personally Identifiable Information
 Reason for collection and storage
 Date originally rec...
Identify Exceptions
and Queries
14
 Flag Exceptions and Queries
 Notifications
 Resolve issues
Review
15
 Assigned for review
 Attached cover letter
 Sign-off for report production &
delivery
Generate response
for delivery
 Generate report
 Delivery based upon method
selected
 Online Account for existing custo...
Reporting and
Analytics
17
Subject Access Request
Demonstration
18
Additional Capability
19
 Identity verification processing
 Retention, archiving and disposal
 PII Detection
 Manageme...
Other Use Cases
20
• GDPR Process & Compliance
Documentation
• Storage and Management of Customer
documents, correspondanc...
Thank you!
21
Request Submitted
22
 Customer submits online/paper
based request or letter
 Selects preferred method of
delivery
 Rece...
Próximos SlideShares
Carregando em…5
×

Webinar | GDPR: How Can Content Services Help You Comply?

1.048 visualizações

Publicada em

The General Data Protection Regulation comes into force on May 2018 and is poised to disrupt how organizations manage and use consumer information.

Aiming at establishing trust with customers, employees and citizens and giving more control over their data, this regulation may dramatically impact the manner in which organizations capture, manage, archive, distribute, and dispose of content.
With the threat of substantial financial penalties for non-compliance (up to 20M€ or 4% annual global revenue), it’s time to act!

With a comprehensive plan in place well in advance, your organization will be able to ensure compliance with the new rules in a timely manner.

Discover :

- What is GDPR and how it will impact your organization
- The compliance checklist
- How a Content Services Platform like Nuxeo can help you comply with GDPR






  • Seja o primeiro a comentar

  • Seja a primeira pessoa a gostar disto

Webinar | GDPR: How Can Content Services Help You Comply?

  1. 1. Understand the customer’s access rights under GDPR and how you can comply Dan Wingrove, EMEA Presales Lead, Nuxeo Peter Blenkinsopp, Data Protection Lead, Compliabilitee
  2. 2. 1 2 4 3 GDPR, The Rights of the individual Subject Access Request Complaints to the ICO How Can Content Services Help You Comply? Agenda
  3. 3. Objection Art. 21 Data Portability Art. 20 Automated Decision Making Art. 22 Rectification Art. 16 Erasure Art. 17 Restriction of Processing Art. 18 GDPR – The Rights of the Individual Data Subject Rights Access Art. 15 X Controller can no longer charge and must comply without ‘undue delay’ and ‘at least within one month’. Controller must use reasonable means to verify the identity of the person making the request. 3
  4. 4. Subject Access Request 4 Access Art. 15 Data controllers must on request provide a copy of the data undergoing processing and if this request is made electronically then the information should be provided in a commonly used electronic form. The purpose of processing and the categories of data processed The recipients or categories of recipients The retention period or criteria used to determine this period The person’s rights of rectification, erasure, to restrict or object to processing Any automated decision making, including information about the logic involved and the significance and envisaged consequences of the processing on the data subject Information regarding the source of the data The right to lodge a complaint with a supervisory authority (ICO)
  5. 5. 2016-17 18,354 Complaints to the ICO Source: ICO Annual Report 2017 2015-16 16,388 12% 60% Subject Access Request 42% Inaccurate Data 11% Right to prevent processing 7%
  6. 6. How Can Content Services Help You Comply?
  7. 7. Nuxeo Nuxeo, developer of the leading, cloud-native content services platform, is reinventing enterprise content and digital asset management. Nuxeo is fundamentally changing how people work with both data and content to realize new value from digital information. 7Digital Asset Management Document Management Case Management Knowledge Management Founded in 2008 8 offices across Europe and US
  8. 8. 8 Subject Access Request  As a Customer, Employee, Citizen, Student…  The rules are changing:  No longer chargeable  Reduced time to respond  Many organisations are expecting an increase in requests
  9. 9. Subject Access Request Processing 9 Discovery Review RespondExceptions Submit Capture Bill Matt Rachel
  10. 10. Request Submitted 10  Customer submits online/paper based request or letter  Selects preferred method of delivery
  11. 11. Create Subject Access Request entry 11  Automatically or manually capture details  Validate and enhance  Initiate workflow & set due date  Automatic notification
  12. 12. Processor performs Customer Discovery 12  System Checklist  Assign for processing  Automated and manual discovery  Extract & attach output
  13. 13. Information to identify 13  Personally Identifiable Information  Reason for collection and storage  Date originally recorded  Retention and Removal schedule  Access and use within organisation and externally
  14. 14. Identify Exceptions and Queries 14  Flag Exceptions and Queries  Notifications  Resolve issues
  15. 15. Review 15  Assigned for review  Attached cover letter  Sign-off for report production & delivery
  16. 16. Generate response for delivery  Generate report  Delivery based upon method selected  Online Account for existing customers  Guest login for non-customers  Print for Face to Face or courier delivery 16
  17. 17. Reporting and Analytics 17
  18. 18. Subject Access Request Demonstration 18
  19. 19. Additional Capability 19  Identity verification processing  Retention, archiving and disposal  PII Detection  Management and attachment of additional collateral  Information usage  Privacy Policy  Your rights
  20. 20. Other Use Cases 20 • GDPR Process & Compliance Documentation • Storage and Management of Customer documents, correspondance and reports • Audit trail of updates and access • Legal Artefacts
  21. 21. Thank you! 21
  22. 22. Request Submitted 22  Customer submits online/paper based request or letter  Selects preferred method of delivery  Received by handling team

×